siemens
2,361 tracked vulnerabilities.
CVE-2025-40804
CRITICAL
SIMATIC Virtualization as a Service - Info Disclosure
Sep 09, 2025
CVSS 9.1
EPSS 0.00
CVE-2025-40803
LOW
RUGGEDCOM RST2428P 6GK6242-6PA00 - Unauthenticated Exposure of Sensitive Information
Sep 09, 2025
CVSS 3.1
EPSS 0.00
CVE-2025-40802
LOW
RUGGEDCOM RST2428P - Denial of Service via High Volume Query Requests
Sep 09, 2025
CVSS 3.1
EPSS 0.00
CVE-2025-40798
HIGH
SIMATIC PCS neo and User Management Component < 2.15.1.3 - Unauthenticated Out-of-bounds Read
Sep 09, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-40797
HIGH
SIMATIC PCS neo and User Management Component < 2.15.1.3 - Unauthenticated Denial of Service via Out-of-bounds Read
Sep 09, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-40796
HIGH
SIMATIC PCS neo and User Management Component < 2.15.1.3 - Unauthenticated Out-of-Bounds Read
Sep 09, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-40795
CRITICAL
SIMATIC PCS neo and User Management Component < 2.15.1.3 - Unauthenticated Stack-based Buffer Overflow
Sep 09, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-40757
MEDIUM
APOGEE PXC Series - Info Disclosure
Sep 09, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-40594
MEDIUM
SINAMICS G220/S200/S210 V6.4 < HF2/7/2 - Unauthenticated Privilege Escalation via Factory Reset
Sep 09, 2025
CVSS 6.3
EPSS 0.00
CVE-2025-38502
HIGH
Linux Kernel 5.9-6.16.0 - Out-of-bounds Read in cgroup Local Storage
Aug 16, 2025
CVSS 7.1
EPSS 0.00
CVE-2025-40758
HIGH
Mendix SAML Module - Signature Validation Account Hijacking
Aug 14, 2025
CVSS 8.7
EPSS 0.00
CVE-2025-40770
HIGH
SINEC Traffic Analyzer - Man-in-the-Middle
Aug 12, 2025
CVSS 7.4
EPSS 0.00
CVE-2025-40769
HIGH
SINEC Traffic Analyzer < V3.0 - Cross-Site Scripting via Unsafe Content Security Policy
Aug 12, 2025
CVSS 7.4
EPSS 0.00
CVE-2025-40768
HIGH
SINEC Traffic Analyzer < 3.0 - Unauthorized Access via Exposed Internal Service Port
Aug 12, 2025
CVSS 7.3
EPSS 0.00
CVE-2025-40767
HIGH
SINEC Traffic Analyzer <V3.0 - Privilege Escalation
Aug 12, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-40766
MEDIUM
SINEC Traffic Analyzer < 3.0 - Denial of Service via Uncontrolled Docker Resource Consumption
Aug 12, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-40764
HIGH
Simcenter Femap V2406 < 2406.0003 and V2412 < 2412.0002 - Out-of-bounds Read via BMP File Parsing
Aug 12, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-40762
HIGH
Simcenter Femap V2406 < 2406.0003 and V2412 < 2412.0002 - Out-of-bounds Write via STP File Parsing
Aug 12, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-40761
HIGH
Siemens RUGGEDCOM ROX - Authentication Bypass via Built-In-Self-Test Mode
Aug 12, 2025
CVSS 7.6
EPSS 0.00
CVE-2025-40759
HIGH
SIMATIC S7-PLCSIM V17, STEP 7 V17<9, STEP 7 V18, STEP 7 V19<4, STEP...
Aug 12, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-40753
MEDIUM
POWER METER SICAM - Info Disclosure
Aug 12, 2025
CVSS 6.2
EPSS 0.00
CVE-2025-40752
MEDIUM
POWER METER SICAM - Info Disclosure
Aug 12, 2025
CVSS 6.2
EPSS 0.00
CVE-2025-40751
MEDIUM
SIMATIC RTLS Locating Manager < 3.3 - Authenticated Credential Exposure in Report Client
Aug 12, 2025
CVSS 6.3
EPSS 0.00
CVE-2025-40746
CRITICAL
SIMATIC RTLS Locating Manager < 3.2 - Authenticated Remote Code Execution via Backup Script Input Validation
Aug 12, 2025
CVSS 9.1
EPSS 0.01
CVE-2025-40743
HIGH
SINUMERIK 828D/840D/ONE/MC Authentication Bypass via VNC Access Service
Aug 12, 2025
CVSS 8.3
EPSS 0.00
Products
teamcenter_visualization 188
jt2go 166
tecnomatix_plant_simulation 86
simcenter_femap 78
telecontrol_server_basic 77
sinema_remote_connect_server 71
sinec_infrastructure_network_services 68
scalance_w1750d_firmware 62
parasolid 52
solid_edge 47
wincc 43
sinec_ins 42
sinec_nms 42
solid_edge_se2023 36
sppa-t3000_ms3000_migration_server 35
jt_utilities 32
comos 31
simatic_wincc 30
jt_open_toolkit 29
scalance_lpe9403_firmware 27
ruggedcom_rox_mx5000_firmware 26
ruggedcom_rox_rx1400_firmware 26
ruggedcom_rox_rx1500_firmware 26
ruggedcom_rox_rx1501_firmware 26
ruggedcom_rox_rx1510_firmware 26
ruggedcom_rox_rx1511_firmware 26
ruggedcom_rox_rx1512_firmware 26
ruggedcom_rox_rx5000_firmware 26
nucleus_net 25
nucleus_source_code 25
Quick Filters